APAC Cybersecurity Analyst

Company Description

Informa is a leading international events, intelligence, and scholarly research group.

We’re the specialist’s specialist. Through hundreds of powerful brands, we work with businesses and professionals in specialist markets, providing the connections, intelligence and opportunities that help customers grow, do business, make breakthroughs, and take better informed decisions.

Informa is listed on London Stock Exchange and a member of FTSE 100, with over 11,000 colleagues working in more than 30 countries.

Job Description

The Cybersecurity Analyst is a member of the Security Operations Center team. The analyst will oversee monitoring, triaging, and responding to cyber security related alerts in a 24/7 setting.

Key responsibilities of the role

 Manages and administers and responds to alerts on a wide range of security systems and tools:

Administers cloud-based security tools such as:

- Microsoft Sentinel,

- Microsoft Defender for Endpoint

- Microsoft Defender for Cloud

- Microsoft Defender for Server

- Microsoft Defender for Mobile

- Microsoft Endpoint Manager (Intune).

- Azure multi-factor authentication

- Zscaler Internet Access

Mimecast

• Manages security incident detection, response, remediation.
• Conducts cyber threat and vulnerability analysis.
• Serves as Incident Response Team member.
• Responds to IT Security trouble tickets generated by customers and IT staff.
• Shows security risks and recommends risk mitigation strategies.
• May be involved in project plans to engineer, construct, deploy, and monitor/manage IT Security infrastructure solutions.
• Demonstrates understanding of security requirements associated with cloud-hosted environments, services, and solutions.
• WHAT YOU'LL NEED TO SUCCEED: Education:
• BA/BS in Information Assurance, Information Systems, Computer Science, or related field
• Security +
• Microsoft SC-200 Certification

Qualifications

• Experience in a enterprise working environment
• Expertise in Microsoft Sentinel
• Expertise in Microsoft Windows Defender for Cloud, Linux, Mobile (Android and iPhone), and Endpoint (Server and Workstations), configuration, deployment, architecture, management, and reporting.
• Expertise in CrowdStrike EDR
• Experience with SIEM/SOAR/MDR platforms
• Experience with various SIEM migration projects.
• Experience with regulatory compliance and information security management frameworks (e.g., IS027000, COBIT, NIST 800, etc.)
• Experience with vulnerability management and penetration testing tools (Tenable.io, Nessus Pro, Open Vas, Kali Linux, Burp Suite)
• Strong knowledge of operating under a zero-trust security methodology.
• Technical experience with Microsoft Identity and Access management (Azure Active Directory, Azure Active Directory premium solutions, Conditional Access, SSO, MFA, PIM).
• Strong Knowledge of Microsoft Cloud App Security and related security tools
• Technical understanding of the MITRE ATT&CK Framework and Threat Modeling
• In-depth knowledge of Red Team concepts such as reconnaissance, malware delivery and functionality, attack methodologies.

Additional Information

Informa is committed to equal employment opportunity for all employees and applicants for employment without regard to age, color, creed, disability status, gender, national origin, race, religion, sexual orientation, or veteran status, or any other legally protected status.